Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unauthenticated Remote Code Execution
ROOT-OS-DEBIAN-11-CVE-2025-38617
Summary
The rootio-linux package has a security issue that allows an attacker to run malicious code on a vulnerable system without needing a password. This is a serious risk, as it could allow an attacker to take control of the system. If you're using rootio-linux, update to a patched version to fix the issue.
What to do
- Update rootio-linux to version 5.10.247-1.root.io.42.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 5.10.247-1.root.io.42 | 5.10.247-1.root.io.42 |
Original title
CVE-2025-38617 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38617 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available.
Published: 7 Mar 2026 · Updated: 13 Mar 2026 · First seen: 7 Mar 2026